Hi group, I'm running cakePHP 1.1.19.6305 behind a reverse proxy. I'm having a problem where sessions are not maintained after a valid login. This causes the login screen to refresh itself after a user supplies valid data. OTOH, if you fill in bogus credentials it displays the typical error message: "The login credentials you supplied could not be recognized. Please try again."
I've dug into the source code a bit, and done a bit of debugging via print statements. So far I've traced the problem to check($name) in session.php. We're checking for a User variable that isn't set. Interestingly, if I write out the contents of $_SESSION inside my login() method, after the login has been verified, $_SESSION does indeed contain an entry for User. I've verified that I can login successfully if I access the machine directly by utilizing its internal IP address. At the same time, I've found that I can login to another PHP based web application (Mantis) from the proxied address. So it seems the problem is the interaction between cake's session management and the reverse proxy. Does anyone have any experience running cakePHP behind a reverse proxy? I've googled a bit, and I found one fellow who overcame this problem by reducing CAKE_SECURITY from high to medium, but sadly this didn't work for me. Any other advice would be greatly appreciated. Let me know if I can provide any more information to help you help me. -Zack --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "CakePHP" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/cake-php?hl=en -~----------~----~----~----~------~----~------~--~---
